Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2009-0331

Published: 29/01/2009 Updated: 29/09/2017
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N
Subscribe to Quirm

Vulnerability Summary

Directory traversal vulnerability in gallery/comment.php in Enhanced Simple PHP Gallery (ESPG) 1.72 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter. NOTE: the vulnerability may be in my little homepage Comment script. If so, then this should not be treated as a vulnerability in ESPG.

Vulnerable Product Search on Vulmon Subscribe to Product

quirm espg 1.72

Exploits

Exploit DB: ESPG (Enhanced Simple PHP Gallery) 1.72 - File Disclosure
::ESPG 172 File Disclosure Vulnerability:: => Scriptname: ESPG (Enhanced Simple PHP Gallery) 172 => Vendor: quirmnet => Download: quirmnet/download/21/ => Bugfounder: bd0rk => Contact: bd0rk[at]hackermailcom => Greetings: str0ke, TheJT, Maria, Alucard, x0r_32 => Vuln ...

References

CWE-22http://www.securityfocus.com/bid/33335https://exchange.xforce.ibmcloud.com/vulnerabilities/48087https://www.exploit-db.com/exploits/7819https://nvd.nist.govhttps://www.exploit-db.com/exploits/7819/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook